|
Hello all,
I am trying to get a production site going, with one Director and two
Realservers for a basic http,ftp web site. This is a company Internet Site.
My current Configuration:
Director(gatekeeper): Debian Linux Kernel 2.2.19 (patched)
RealServer1(web1): Windows 2000 Server SP2
RealServer2(web2): Windows 2000 Server SP2
My ipvsadm version is 1.15
IPVS Table:
IP Virtual Server version 1.0.8 (size=4096)
Prot LocalAddress:Port Scheduler Flags
-> RemoteAddress:Port Forward Weight ActiveConn
InActConn
TCP gatekeeper:telnet rr
-> web2:telnet Route 1
0 0
-> web1:telnet Route 1
0 0
TCP gatekeeper:ftp lc persistent 600
-> web2:ftp Route 1
0 0
-> web1:ftp Route 1
0 0
TCP gatekeeper:www lc persistent 600
-> web2:www Route 1 0
0
-> web1:www Route 1 0
0
TCP gatekeeper:netpipe rr
-> web1:netpipe Route 1 0
0
The IP Addresses are as follows (from Director hosts file):
Host IP
client (router) 65.88.136.33
director 65.88.136.62
Virtual IP (VIP) 65.88.136.61
realserver1 RIP1=192.168.101.2, VIP=65.88.136.61
realserver2 RIP2=192.168.101.3, VIP=65.88.136.61
Here is the ASCII drawing of my Network (I hope)
-------------
| | 65.88.136.33
| Router |------------------------TO INTERNET
| |
-------------
|------------------------
|
----------| | |--------
| | | | |
---------------- | ----------------- | --------------
| 65.88.136.60 | | | | | |65.88.136.62|
| Domain | | | | | | Load |
(192.168.101.1)
|Controller | |--| Network |--| | Balancer
|----------------
|192.168.101.20| | Switch | |65.88.136.61|
|
---------------- ----------------- --------------
|
| |
|
|
-------------------------|(65.88.136.61) |
| | |
|
| --------------- ---------------
|
| |65.88.136.61 | |65.88.136.61 |
|
| |Real Server 1| |Real Server 2|
|
| | | | |
|
| |192.168.101.2| |192.168.101.3|
|
| --------------- ---------------
|
------------- | |
|
| | | |
|
| Network |------------------------------
|
| Switch |
|
-------------
|
|
|
|-----------------------------------------------------------------|
|
---------------
|192.168.101.x|
| Network |
| Computers |
---------------
I hope this makes sense. If not, let me know, and I will try to clarify.
Ok, now a verbal description.
My Director has 2 nics, one is RIP 65.88.136.62 and the other is RIP
192.168.101.1, I set the RIP 65.88.136.62 to be VIP 65.88.136.61. This
connects to the two RealServers. These RealServers then Gateway to the
Domain Controller of 192.168.101.20. The RealServer also connects to this
gateway. Why? Hmmm...good question and I'll have to look into it.
When I attempt to telnet to my two Real Servers from my computer
(192.168.101.10) using the VIP, I connect fine and get a response. Also from
HTTP and FTP. However, if I walk across the hall to a computer on a
different subnet (192.168.100.x) which uses a different
gateway(65.88.136.34), I get acknowledgements on my Director with a tcpdump
command. However, I get no connection.
I don't understand why I can see the website while I'm on the LAN, but can't
over a WAN(or Internet)
Please Help. If there's anything I need to clear up, please let me know.
Thanks in advance,
Bill Hatter
Network/Web Administrator
Anderson Publishing Company
Cincinnati, OH 45202
|
